$ rpki-client -vvf repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133362e302f32332d3233203d3e20313530393332.roa File: 3130332e3130372e3133362e302f32332d3233203d3e20313530393332.roa (raw, json) Hash identifier: FR9a77B8Ew796zqJNC2IqXfP+FCpHKrjMFz5+10CJeY= Subject key identifier: 3D:51:F1:CA:69:78:CB:DD:D6:96:38:C1:28:8A:0A:E3:0B:AF:04:42 Certificate issuer: /CN=CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8 Certificate serial: 776509F17F30F452D3CE2B8ED0A0F7B21855E729 Authority key identifier: CC:2F:A8:A6:92:DD:D4:4F:4E:A7:0E:AE:AC:32:04:D5:3E:64:55:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133362e302f32332d3233203d3e20313530393332.roa Signing time: Mon 20 Jan 2025 07:01:19 +0000 ROA not before: Mon 20 Jan 2025 06:56:19 +0000 ROA not after: Mon 19 Jan 2026 07:01:19 +0000 asID: 150932 IP address blocks: 103.107.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.crl rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 19:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:65:09:f1:7f:30:f4:52:d3:ce:2b:8e:d0:a0:f7:b2:18:55:e7:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8 Validity Not Before: Jan 20 06:56:19 2025 GMT Not After : Jan 19 07:01:19 2026 GMT Subject: CN=3D51F1CA6978CBDDD69638C1288A0AE30BAF0442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1a:08:c7:55:f9:99:4c:90:f7:f4:d5:73:90: f6:42:54:5f:b7:4c:39:a6:89:f8:bd:59:5e:b3:9a: f0:9b:bb:9d:d0:a2:99:d4:35:94:4e:8f:5f:9c:a5: 15:44:5b:6d:b7:49:c9:a7:49:86:9b:ea:e0:c6:f9: fb:ff:31:77:48:e2:6e:9d:0d:40:82:89:5e:14:4a: ea:dc:27:92:71:aa:2d:f8:aa:6d:df:1e:3d:f3:40: d2:93:8e:d9:76:77:fe:85:30:db:06:2b:f4:e4:23: 8d:c3:b2:ca:66:aa:5a:b9:39:72:a5:b7:19:52:05: 8e:12:c6:8a:29:1e:a1:f6:47:7a:5d:8b:a9:b5:74: 51:31:0e:bd:29:8f:0f:91:56:1b:3b:51:c7:8d:08: 68:3a:5a:66:c9:09:e1:a1:66:6b:c5:68:4c:42:c6: e0:d9:ef:85:1b:83:48:8f:53:78:0e:27:26:70:3c: 57:85:f3:de:ce:5a:74:54:7e:c6:b9:8a:0b:e5:ce: 84:2e:d2:7d:08:0c:10:07:27:23:bc:56:6e:56:39: 9c:53:07:c9:50:46:a1:42:26:42:4d:0d:6c:7d:1e: 4c:da:7c:79:64:9e:1a:ad:90:b4:08:69:71:bf:7d: a9:4b:d9:a7:98:a4:f3:67:28:a0:37:2a:12:e2:c1: 4e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:51:F1:CA:69:78:CB:DD:D6:96:38:C1:28:8A:0A:E3:0B:AF:04:42 X509v3 Authority Key Identifier: keyid:CC:2F:A8:A6:92:DD:D4:4F:4E:A7:0E:AE:AC:32:04:D5:3E:64:55:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133362e302f32332d3233203d3e20313530393332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.136.0/23 Signature Algorithm: sha256WithRSAEncryption c7:75:b9:46:13:6e:27:16:39:5e:68:2a:1a:da:9e:bf:b4:a9: 60:d6:4d:2f:d2:1b:04:25:31:37:e9:ec:13:bc:85:69:69:0f: af:65:fe:dc:ba:bf:20:23:e5:46:81:ea:0c:94:91:a5:9e:a9: b1:02:f8:a2:34:c6:97:66:ae:14:e1:84:1e:26:60:32:6e:67: a3:ac:f9:3c:63:07:b7:46:bb:fe:dc:1c:dc:9a:41:99:41:cb: 87:f1:8c:84:c5:1f:3d:7d:7b:25:46:70:8e:26:64:71:59:42: 4f:47:93:79:6d:3b:1b:37:7a:c9:bb:f5:d1:b6:52:31:7a:de: 84:82:f0:8e:2e:c2:db:aa:de:1c:f9:f7:ea:62:ff:9e:22:24: 5a:5f:ad:03:b8:d0:16:f7:82:42:d0:89:11:a3:e8:93:8a:ff: 97:4b:96:c8:e4:b2:4d:74:fd:df:2f:67:91:fc:7e:c6:5d:8d: 32:84:5d:62:30:8d:f0:13:82:33:ac:5c:48:ba:36:f3:b8:87: 69:7f:2d:10:ca:d1:9b:f2:50:a4:0f:9b:b7:66:2f:53:b5:77: f7:3b:43:69:59:83:a0:c8:7c:31:65:a0:23:1b:16:76:e4:92: d3:48:26:dd:6d:f8:d0:45:fe:8d:a2:5f:af:36:32:cc:41:47: 45:2a:74:42 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUd2UJ8X8w9FLTziuO0KD3shhV5ykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0MyRkE4QTY5MkRERDQ0RjRFQTcwRUFFQUMzMjA0RDUz RTY0NTVDODAeFw0yNTAxMjAwNjU2MTlaFw0yNjAxMTkwNzAxMTlaMDMxMTAvBgNV BAMTKDNENTFGMUNBNjk3OENCRERENjk2MzhDMTI4OEEwQUUzMEJBRjA0NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMGgjHVfmZTJD39NVzkPZCVF+3 TDmmifi9WV6zmvCbu53QopnUNZROj1+cpRVEW223ScmnSYab6uDG+fv/MXdI4m6d DUCCiV4USurcJ5Jxqi34qm3fHj3zQNKTjtl2d/6FMNsGK/TkI43Dsspmqlq5OXKl txlSBY4SxoopHqH2R3pdi6m1dFExDr0pjw+RVhs7UceNCGg6WmbJCeGhZmvFaExC xuDZ74Ubg0iPU3gOJyZwPFeF897OWnRUfsa5igvlzoQu0n0IDBAHJyO8Vm5WOZxT B8lQRqFCJkJNDWx9HkzafHlknhqtkLQIaXG/falL2aeYpPNnKKA3KhLiwU6ZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPVHxyml4y93WljjBKIoK4wuvBEIwHwYDVR0j BBgwFoAUzC+oppLd1E9Opw6urDIE1T5kVcgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YWYzMTU5OS04YjA4LTRmZmQtYTA1Ni03OTVlOGFhMGE1ODYvMC9DQzJGQThBNjky RERENDRGNEVBNzBFQUVBQzMyMDRENTNFNjQ1NUM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0MyRkE4QTY5MkRERDQ0RjRFQTcwRUFFQUMzMjA0RDUzRTY0 NTVDOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhZjMxNTk5LThiMDgtNGZmZC1h MDU2LTc5NWU4YWEwYTU4Ni8wLzMxMzAzMzJlMzEzMDM3MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzAzOTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFna4gwDQYJ KoZIhvcNAQELBQADggEBAMd1uUYTbicWOV5oKhranr+0qWDWTS/SGwQlMTfp7BO8 hWlpD69l/ty6vyAj5UaB6gyUkaWeqbEC+KI0xpdmrhThhB4mYDJuZ6Os+TxjB7dG u/7cHNyaQZlBy4fxjITFHz19eyVGcI4mZHFZQk9Hk3ltOxs3esm79dG2UjF63oSC 8I4uwtuq3hz59+pi/54iJFpfrQO40Bb3gkLQiRGj6JOK/5dLlsjksk10/d8vZ5H8 fsZdjTKEXWIwjfATgjOsXEi6NvO4h2l/LRDK0ZvyUKQPm7dmL1O1d/c7Q2lZg6DI fDFloCMbFnbkktNIJt1t+NBF/o2iX682MsxBR0UqdEI= -----END CERTIFICATE-----Generated at Fri Feb 21 11:20:07 2025 by rpki-client